Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-02-2014
Ran by Krzysiek (administrator) on STACJA on 22-02-2014 08:47:50
Running from C:\Documents and Settings\Krzysiek\Moje dokumenty
Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAMain.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
() C:\Program Files\Innovation\Innovation G-Laser Mouse\1.0\ACQTMAPP.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAService.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Opera Software) C:\Program Files\Opera\19.0.1326.63\opera.exe
() C:\Program Files\Opera\19.0.1326.63\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\19.0.1326.63\opera.exe
(Opera Software) C:\Program Files\Opera\19.0.1326.63\opera.exe
(Opera Software) C:\Program Files\Opera\19.0.1326.63\opera.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [PSUAMain] - C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAMain.exe [32736 2013-10-19] (Panda Security, S.L.)
HKLM\...\Run: [nwiz] - C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-03-23] ()
HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [20145368 2013-06-24] (Realtek Semiconductor Corp.)
HKLM\...\Run: [ACQTMOUSE] - C:\Program Files\Innovation\Innovation G-Laser Mouse\1.0\ACQTMAPP.exe [490496 2007-05-28] ()
HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [15517984 2013-03-21] (NVIDIA Corporation)
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-2000478354-1532298954-725345543-1004\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-2000478354-1532298954-725345543-1004\...\Policies\Explorer: [LockTaskbar] 0

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.pl/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {7CBFE9B2-2E99-4429-9F87-75032938E3A5} URL = http://www.bing.com/search?q={searchTerms}&r=843
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {7CBFE9B2-2E99-4429-9F87-75032938E3A5} URL = http://www.bing.com/search?q={searchTerms}&r=843
Toolbar: HKLM - No Name - {97ab88ef-346b-4179-a0b1-7445896547a5} -  No File
Toolbar: HKLM - No Name - {438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59} -  No File
Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Krzysiek\Dane aplikacji\Mozilla\Firefox\Profiles\1ueh45es.default-1368547622890
FF Homepage: hxxp://www.google.pl
FF NetworkProxy: "ftp", "79.127.107.49:8080"
FF NetworkProxy: "http", "121.100.28.18"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "no_proxies_on", ""
FF NetworkProxy: "socks", "79.127.107.49:8080"
FF NetworkProxy: "ssl", "79.127.107.49:8080"
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Dane aplikacji\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

========================== Services (Whitelisted) =================

R2 NanoServiceMain; C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe [140768 2013-10-03] (Panda Security, S.L.)
R2 PSUAService; C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAService.exe [37344 2013-10-19] (Panda Security, S.L.)

==================== Drivers (Whitelisted) ====================

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [278984 2013-03-28] ()
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25416 2013-03-28] ()
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\mbamswissarmy.sys [40776 2014-02-13] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R1 NNSALPC; C:\WINDOWS\System32\DRIVERS\NNSAlpc.sys [84200 2013-05-29] (Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\System32\DRIVERS\NNSHttp.sys [126184 2013-05-29] (Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\System32\DRIVERS\NNSHttps.sys [107752 2013-05-29] (Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\System32\DRIVERS\NNSIds.sys [124648 2013-05-29] (Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\System32\DRIVERS\NNSPicc.sys [95464 2013-05-29] (Panda Security, S.L.)
S4 NNSPIHS; C:\WINDOWS\System32\DRIVERS\NNSPihs.sys [52328 2013-05-29] (Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\System32\DRIVERS\NNSPop3.sys [106344 2013-05-29] (Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\System32\DRIVERS\NNSProt.sys [287336 2013-05-29] (Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\System32\DRIVERS\NNSPrv.sys [161384 2013-05-29] (Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\System32\DRIVERS\NNSSmtp.sys [108904 2013-05-29] (Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\System32\DRIVERS\NNSStrm.sys [230376 2013-05-29] (Panda Security, S.L.)
R1 NNSTLSC; C:\WINDOWS\System32\DRIVERS\NNSTlsc.sys [93928 2013-05-29] (Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\System32\DRIVERS\PSINAflt.sys [145640 2013-10-17] (Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [103528 2013-10-11] (Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\System32\DRIVERS\psinknc.sys [179944 2013-10-11] (Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [115048 2013-10-11] (Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\System32\DRIVERS\PSINProt.sys [128232 2013-10-11] (Panda Security, S.L.)
S3 PSINReg; C:\WINDOWS\System32\DRIVERS\PSINReg.sys [97896 2013-10-11] (Panda Security, S.L.)
R3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [47632 2013-04-29] (Panda Security, S.L.)
R0 Ramdisk; C:\WINDOWS\System32\DRIVERS\ramdsk.sys [26240 2004-09-28] (Totalidea Software)
S3 cleanhlp; \??\C:\EEK\Run\cleanhlp32.sys [X]
S1 ESProtectionDriver; \??\C:\Program Files\Malwarebytes Anti-Exploit\MBAE.sys [X]
S4 IntelIde; No ImagePath
S3 P2k; system32\DRIVERS\P2k.sys [X]
S3 rkhdrv40; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S4 sptd; \SystemRoot\System32\Drivers\sptd.sys [X]
U5 Tcpip6; C:\Windows\System32\Drivers\Tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
S3 VirtualFD; \??\C:\Documents and Settings\Krzysiek\Moje dokumenty\Pobieranie\vfd.sys [X]
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-22 08:47 - 2014-02-22 08:47 - 00009807 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\FRST.txt
2014-02-22 08:47 - 2014-02-22 08:47 - 00000000 ____D () C:\FRST
2014-02-22 08:46 - 2014-02-22 08:46 - 01142784 _____ (Farbar) C:\Documents and Settings\Krzysiek\Moje dokumenty\FRST.exe
2014-02-22 01:53 - 2014-02-22 01:53 - 00000403 _____ () C:\WINDOWS\wmsetup.log
2014-02-21 22:59 - 2014-02-21 22:59 - 00015038 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Kochankowie z Księżyca - Moonrise Kingdom -2012- [BRRip] [XviD-LLO] [Lektor PL].torrent
2014-02-21 21:44 - 2014-02-21 21:44 - 00090112 _____ () C:\WINDOWS\Minidump\Mini022114-01.dmp
2014-02-21 20:14 - 2014-02-21 20:14 - 00009137 _____ () C:\Documents and Settings\Krzysiek\Pulpit\gmer.txt
2014-02-21 19:36 - 2014-02-21 19:36 - 00000795 _____ () C:\Documents and Settings\Krzysiek\Pulpit\checkup.txt
2014-02-21 19:33 - 2014-02-21 19:33 - 00092256 _____ () C:\Documents and Settings\Krzysiek\Pulpit\OTL.Txt
2014-02-21 19:33 - 2014-02-21 19:33 - 00034856 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Extras.Txt
2014-02-21 19:31 - 2014-02-21 19:31 - 00034856 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\Extras.Txt
2014-02-21 19:30 - 2014-02-21 19:33 - 00092256 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\OTL.Txt
2014-02-21 19:23 - 2014-02-21 19:23 - 00380416 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\5hn0zb4v.exe
2014-02-21 19:21 - 2014-02-21 19:21 - 00987425 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\SecurityCheck.exe
2014-02-21 19:16 - 2014-02-21 19:16 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Krzysiek\Moje dokumenty\OTL.exe
2014-02-21 19:07 - 2014-02-21 19:07 - 00522360 _____ (Duplex Secure Ltd.) C:\Documents and Settings\Krzysiek\Moje dokumenty\SPTDinst-v186-x86.exe
2014-02-21 19:06 - 2014-02-21 19:06 - 00000483 _____ () C:\WINDOWS\setupapi.log
2014-02-20 23:31 - 2014-02-20 23:31 - 00001703 _____ () C:\Documents and Settings\All Users\Pulpit\Foxit Reader.lnk
2014-02-20 23:31 - 2014-02-20 23:31 - 00000000 ____D () C:\Program Files\FOXIT SOFTWARE
2014-02-18 18:17 - 2013-04-29 08:17 - 00047632 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2014-02-17 07:49 - 2014-02-17 07:50 - 03618368 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-16 23:41 - 2014-02-16 23:41 - 00014951 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Igrzyska śmierci - The Hunger Games (2012) [DVDRip XviD AC3-sav] [Lektor PL].torrent
2014-02-16 23:41 - 2014-02-16 23:41 - 00014951 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Igrzyska śmierci - The Hunger Games (2012) [DVDRip XviD AC3-sav] [Lektor PL] (1).torrent
2014-02-16 23:40 - 2014-02-16 23:40 - 00013271 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Igrzyska śmierci - The Hunger Games -2012- [BRRip.RMVB] [Lektor PL] [NeDZA].torrent
2014-02-16 22:46 - 2014-02-16 22:46 - 00070464 _____ () C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2014-02-16 22:26 - 2014-02-16 22:26 - 00000392 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Skrót do prezentazcja.avi.lnk
2014-02-16 12:37 - 2014-02-21 14:18 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Dane aplikacji\Ice Age 2
2014-02-16 12:36 - 2014-02-16 12:36 - 00000001 _____ () C:\DXOkay.bin
2014-02-16 12:36 - 2014-02-16 12:36 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Sierra
2014-02-16 12:34 - 2014-02-16 12:34 - 00000441 _____ () C:\Documents and Settings\All Users\Pulpit\Graj w Epokę lodowcową 2 Odwilż.lnk
2014-02-16 12:30 - 2014-02-16 12:31 - 13485616 _____ (Disc Soft Ltd) C:\Documents and Settings\Krzysiek\Moje dokumenty\DTLite4481-0347.exe
2014-02-16 11:52 - 2014-02-16 11:52 - 00044775 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\Epoka Lodowcowa 2 Odwilż PL.torrent
2014-02-16 11:49 - 2014-02-16 11:49 - 00017831 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Epoka Lodowcowa 4 Wędrówka Kontynentów- Arktyczne Igrzyska (2012) [ENG] [SKIDROW] (1).torrent
2014-02-16 11:44 - 2014-02-16 11:44 - 00017831 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Epoka Lodowcowa 4 Wędrówka Kontynentów- Arktyczne Igrzyska (2012) [ENG] [SKIDROW].torrent
2014-02-15 09:20 - 2014-02-15 09:20 - 00000669 _____ () C:\Documents and Settings\All Users\Pulpit\Opera.lnk
2014-02-15 09:20 - 2014-02-15 09:20 - 00000669 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Opera.lnk
2014-02-14 13:09 - 2014-02-14 13:09 - 00000730 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
2014-02-14 13:09 - 2014-02-14 13:09 - 00000724 _____ () C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
2014-02-14 12:45 - 2014-02-22 08:43 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-02-14 12:45 - 2014-02-22 08:43 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-02-14 12:45 - 2014-02-22 02:42 - 00007102 _____ () C:\WINDOWS\SchedLgU.Txt
2014-02-14 12:45 - 2014-02-14 12:45 - 00000000 ____N () C:\WINDOWS\Sti_Trace.log
2014-02-14 12:43 - 2014-02-22 08:44 - 00200327 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-14 12:41 - 2014-02-14 12:41 - 00007304 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\cc_20140214_124113.reg
2014-02-14 11:59 - 2011-12-22 15:11 - 00000732 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.20140214-115945.backup
2014-02-14 11:44 - 2014-02-15 02:24 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-02-14 11:43 - 2014-02-14 11:44 - 16409960 _____ (Safer Networking Limited ) C:\Documents and Settings\Krzysiek\Moje dokumenty\spybotsd162.exe
2014-02-13 19:45 - 2014-02-14 13:17 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-13 19:45 - 2014-02-14 13:17 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-02-13 19:42 - 2014-02-13 19:42 - 00040776 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2014-02-08 09:31 - 2014-02-08 09:31 - 00000056 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\rus.txt
2014-02-04 22:21 - 2014-02-04 22:21 - 00036352 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Krzysztof_raport paliwowy I.2014.xls
2014-02-04 21:56 - 2014-02-04 21:56 - 00957952 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Loco marmolada 02.2014.xls
2014-02-04 21:46 - 2014-02-04 21:46 - 00286208 _____ () C:\Documents and Settings\Krzysiek\Pulpit\sezam 02-03.2014.xls
2014-02-01 18:52 - 2014-02-01 18:52 - 00000042 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Nela.txt
2014-01-31 20:11 - 2014-02-01 06:02 - 00045056 _____ () C:\Documents and Settings\Krzysiek\Pulpit\bn Sprzedaż od 2014-01-17 do 2014-01-31.xls
2014-01-31 19:36 - 2014-01-31 19:36 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\XILS-lab
2014-01-31 19:36 - 2006-01-03 08:29 - 00172032 _____ () C:\WINDOWS\system32\FxGoWinFu.dll
2014-01-31 19:32 - 2014-01-31 19:32 - 00715152 _____ () C:\WINDOWS\unins001.exe
2014-01-31 19:32 - 2014-01-31 19:32 - 00036202 _____ () C:\WINDOWS\unins001.dat
2014-01-29 23:38 - 2014-01-29 23:38 - 00030208 _____ () C:\Documents and Settings\Krzysiek\Pulpit\modBN Sprzedaż od 2014-01-01 do 2014-01-16.xls
2014-01-29 16:52 - 2014-01-29 16:52 - 00000133 _____ () C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
2014-01-28 20:53 - 2014-01-28 20:53 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Waves
2014-01-24 19:18 - 2013-08-29 01:56 - 00026240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2014-01-24 19:18 - 2013-08-29 01:56 - 00026240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbser.sys
2014-01-24 18:51 - 2014-02-15 01:53 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Motorola PST
2014-01-24 08:32 - 2014-01-24 08:32 - 00000000 ____D () C:\Program Files\WIBU-SYSTEMS
2014-01-24 08:31 - 2014-02-15 01:53 - 00000000 ____D () C:\Program Files\Motorola

==================== One Month Modified Files and Folders =======

2014-02-22 08:47 - 2014-02-22 08:47 - 00009807 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\FRST.txt
2014-02-22 08:47 - 2014-02-22 08:47 - 00000000 ____D () C:\FRST
2014-02-22 08:47 - 2012-12-25 12:14 - 00000000 ___RD () C:\Documents and Settings\Krzysiek\Moje dokumenty
2014-02-22 08:46 - 2014-02-22 08:46 - 01142784 _____ (Farbar) C:\Documents and Settings\Krzysiek\Moje dokumenty\FRST.exe
2014-02-22 08:44 - 2014-02-14 12:43 - 00200327 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-22 08:43 - 2014-02-14 12:45 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-02-22 08:43 - 2014-02-14 12:45 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-02-22 08:42 - 2013-05-18 21:34 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-22 02:42 - 2014-02-14 12:45 - 00007102 _____ () C:\WINDOWS\SchedLgU.Txt
2014-02-22 02:42 - 2013-05-18 06:37 - 00393216 _____ () C:\WINDOWS\system32\config\Nano.evt
2014-02-22 02:42 - 2012-12-25 12:14 - 00000188 ___SH () C:\Documents and Settings\Krzysiek\ntuser.ini
2014-02-22 01:53 - 2014-02-22 01:53 - 00000403 _____ () C:\WINDOWS\wmsetup.log
2014-02-21 23:22 - 2013-05-20 18:05 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Dane aplikacji\uTorrent
2014-02-21 22:59 - 2014-02-21 22:59 - 00015038 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Kochankowie z Księżyca - Moonrise Kingdom -2012- [BRRip] [XviD-LLO] [Lektor PL].torrent
2014-02-21 21:44 - 2014-02-21 21:44 - 00090112 _____ () C:\WINDOWS\Minidump\Mini022114-01.dmp
2014-02-21 21:44 - 2013-01-05 19:17 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-21 20:14 - 2014-02-21 20:14 - 00009137 _____ () C:\Documents and Settings\Krzysiek\Pulpit\gmer.txt
2014-02-21 20:14 - 2012-12-25 12:14 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Pulpit
2014-02-21 19:36 - 2014-02-21 19:36 - 00000795 _____ () C:\Documents and Settings\Krzysiek\Pulpit\checkup.txt
2014-02-21 19:33 - 2014-02-21 19:33 - 00092256 _____ () C:\Documents and Settings\Krzysiek\Pulpit\OTL.Txt
2014-02-21 19:33 - 2014-02-21 19:33 - 00034856 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Extras.Txt
2014-02-21 19:33 - 2014-02-21 19:30 - 00092256 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\OTL.Txt
2014-02-21 19:31 - 2014-02-21 19:31 - 00034856 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\Extras.Txt
2014-02-21 19:23 - 2014-02-21 19:23 - 00380416 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\5hn0zb4v.exe
2014-02-21 19:21 - 2014-02-21 19:21 - 00987425 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\SecurityCheck.exe
2014-02-21 19:16 - 2014-02-21 19:16 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Krzysiek\Moje dokumenty\OTL.exe
2014-02-21 19:09 - 2006-03-02 13:00 - 00012598 _____ () C:\WINDOWS\system32\wpa.dbl
2014-02-21 19:07 - 2014-02-21 19:07 - 00522360 _____ (Duplex Secure Ltd.) C:\Documents and Settings\Krzysiek\Moje dokumenty\SPTDinst-v186-x86.exe
2014-02-21 19:06 - 2014-02-21 19:06 - 00000483 _____ () C:\WINDOWS\setupapi.log
2014-02-21 19:06 - 2012-12-25 12:58 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit
2014-02-21 19:03 - 2013-03-25 20:21 - 00000000 __SHD () C:\Documents and Settings\Krzysiek\UserData
2014-02-21 19:03 - 2012-12-25 12:14 - 00000000 ____D () C:\Documents and Settings\Krzysiek
2014-02-21 17:36 - 2012-12-25 12:59 - 01319862 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-21 17:36 - 2006-03-02 13:00 - 00577704 _____ () C:\WINDOWS\system32\perfh015.dat
2014-02-21 17:36 - 2006-03-02 13:00 - 00116292 _____ () C:\WINDOWS\system32\perfc015.dat
2014-02-21 14:18 - 2014-02-16 12:37 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Dane aplikacji\Ice Age 2
2014-02-20 23:31 - 2014-02-20 23:31 - 00001703 _____ () C:\Documents and Settings\All Users\Pulpit\Foxit Reader.lnk
2014-02-20 23:31 - 2014-02-20 23:31 - 00000000 ____D () C:\Program Files\FOXIT SOFTWARE
2014-02-20 23:31 - 2013-11-25 22:10 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Dane aplikacji\Foxit Software
2014-02-20 23:27 - 2012-12-25 13:56 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Moje dokumenty\Pobieranie
2014-02-17 07:50 - 2014-02-17 07:49 - 03618368 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-17 01:36 - 2013-11-12 21:46 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Dane aplikacji\vlc
2014-02-17 01:36 - 2013-07-12 06:26 - 00065536 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-02-17 01:36 - 2013-07-12 05:53 - 00065536 _____ () C:\WINDOWS\system32\config\EventForwarding-Operational.Evt
2014-02-17 01:36 - 2013-01-11 21:11 - 00065536 _____ () C:\WINDOWS\system32\config\Doctor Web.evt
2014-02-17 01:36 - 2012-12-30 22:01 - 00065536 _____ () C:\WINDOWS\system32\config\ODiag.evt
2014-02-17 01:36 - 2012-12-25 21:27 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2014-02-16 23:41 - 2014-02-16 23:41 - 00014951 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Igrzyska śmierci - The Hunger Games (2012) [DVDRip XviD AC3-sav] [Lektor PL].torrent
2014-02-16 23:41 - 2014-02-16 23:41 - 00014951 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Igrzyska śmierci - The Hunger Games (2012) [DVDRip XviD AC3-sav] [Lektor PL] (1).torrent
2014-02-16 23:40 - 2014-02-16 23:40 - 00013271 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Igrzyska śmierci - The Hunger Games -2012- [BRRip.RMVB] [Lektor PL] [NeDZA].torrent
2014-02-16 22:46 - 2014-02-16 22:46 - 00070464 _____ () C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2014-02-16 22:46 - 2012-12-25 12:14 - 00000000 ___HD () C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Dane aplikacji
2014-02-16 22:44 - 2013-06-23 12:43 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Dane aplikacji\DAEMON Tools Lite
2014-02-16 22:26 - 2014-02-16 22:26 - 00000392 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Skrót do prezentazcja.avi.lnk
2014-02-16 12:37 - 2012-12-25 12:14 - 00000000 __RHD () C:\Documents and Settings\Krzysiek\Dane aplikacji
2014-02-16 12:36 - 2014-02-16 12:36 - 00000001 _____ () C:\DXOkay.bin
2014-02-16 12:36 - 2014-02-16 12:36 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Sierra
2014-02-16 12:36 - 2012-12-25 12:58 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy
2014-02-16 12:34 - 2014-02-16 12:34 - 00000441 _____ () C:\Documents and Settings\All Users\Pulpit\Graj w Epokę lodowcową 2 Odwilż.lnk
2014-02-16 12:34 - 2012-12-25 13:50 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-02-16 12:31 - 2014-02-16 12:30 - 13485616 _____ (Disc Soft Ltd) C:\Documents and Settings\Krzysiek\Moje dokumenty\DTLite4481-0347.exe
2014-02-16 11:52 - 2014-02-16 11:52 - 00044775 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\Epoka Lodowcowa 2 Odwilż PL.torrent
2014-02-16 11:49 - 2014-02-16 11:49 - 00017831 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Epoka Lodowcowa 4 Wędrówka Kontynentów- Arktyczne Igrzyska (2012) [ENG] [SKIDROW] (1).torrent
2014-02-16 11:44 - 2014-02-16 11:44 - 00017831 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\[torrent.pl] Epoka Lodowcowa 4 Wędrówka Kontynentów- Arktyczne Igrzyska (2012) [ENG] [SKIDROW].torrent
2014-02-15 09:43 - 2012-12-26 09:55 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-02-15 09:20 - 2014-02-15 09:20 - 00000669 _____ () C:\Documents and Settings\All Users\Pulpit\Opera.lnk
2014-02-15 09:20 - 2014-02-15 09:20 - 00000669 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Opera.lnk
2014-02-15 09:20 - 2014-01-06 11:55 - 00000000 ____D () C:\Program Files\Opera
2014-02-15 02:24 - 2014-02-14 11:44 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-02-15 02:23 - 2013-11-29 20:14 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
2014-02-15 01:54 - 2012-12-25 12:51 - 00000000 ____D () C:\WINDOWS\system
2014-02-15 01:53 - 2014-01-24 18:51 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Motorola PST
2014-02-15 01:53 - 2014-01-24 08:31 - 00000000 ____D () C:\Program Files\Motorola
2014-02-14 13:17 - 2014-02-13 19:45 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-14 13:17 - 2014-02-13 19:45 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-02-14 13:17 - 2012-12-28 15:10 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Dane aplikacji\Adobe
2014-02-14 13:09 - 2014-02-14 13:09 - 00000730 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
2014-02-14 13:09 - 2014-02-14 13:09 - 00000724 _____ () C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
2014-02-14 13:09 - 2013-05-21 17:31 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-14 12:45 - 2014-02-14 12:45 - 00000000 ____N () C:\WINDOWS\Sti_Trace.log
2014-02-14 12:41 - 2014-02-14 12:41 - 00007304 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\cc_20140214_124113.reg
2014-02-14 11:45 - 2012-12-25 12:57 - 00000239 ___SH () C:\boot.ini
2014-02-14 11:45 - 2006-03-02 13:00 - 00000634 _____ () C:\WINDOWS\win.ini
2014-02-14 11:45 - 2006-03-02 13:00 - 00000227 _____ () C:\WINDOWS\system.ini
2014-02-14 11:44 - 2014-02-14 11:43 - 16409960 _____ (Safer Networking Limited ) C:\Documents and Settings\Krzysiek\Moje dokumenty\spybotsd162.exe
2014-02-14 07:55 - 2013-07-12 06:14 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-14 07:52 - 2012-12-25 22:28 - 85946576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-13 20:33 - 2014-01-06 11:56 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Dane aplikacji\genienext
2014-02-13 20:08 - 2013-01-24 18:38 - 00000000 ____D () C:\Program Files\Google
2014-02-13 19:42 - 2014-02-13 19:42 - 00040776 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2014-02-13 19:42 - 2013-01-01 02:45 - 00000000 ____D () C:\WINDOWS\system32\LogFiles
2014-02-13 19:37 - 2014-01-19 14:59 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Dane aplikacji\rmi
2014-02-13 19:33 - 2013-12-29 19:43 - 00000000 ____D () C:\Program Files\Easeware
2014-02-10 18:17 - 2012-12-25 12:14 - 00000000 ___RD () C:\Documents and Settings\Krzysiek\Moje dokumenty\Moja muzyka
2014-02-08 09:31 - 2014-02-08 09:31 - 00000056 _____ () C:\Documents and Settings\Krzysiek\Moje dokumenty\rus.txt
2014-02-06 04:38 - 2006-03-02 13:00 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-06 04:38 - 2006-03-02 13:00 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wininet.dll
2014-02-06 00:08 - 2013-01-02 10:12 - 02006016 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2014-02-06 00:08 - 2013-01-02 10:12 - 00743424 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2014-02-06 00:08 - 2013-01-02 10:12 - 00630272 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeeds.dll
2014-02-06 00:08 - 2013-01-02 10:12 - 00522240 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2014-02-06 00:08 - 2013-01-02 10:12 - 00247808 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieproxy.dll
2014-02-06 00:08 - 2013-01-02 10:12 - 00055296 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2014-02-06 00:08 - 2013-01-02 10:12 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpshims.dll
2014-02-06 00:08 - 2012-12-25 12:07 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vgx.dll
2014-02-06 00:08 - 2012-11-01 17:43 - 11113472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieframe.dll
2014-02-06 00:08 - 2009-03-08 04:39 - 11113472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-06 00:08 - 2009-03-08 04:32 - 02006016 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-06 00:08 - 2009-03-08 04:32 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-06 00:08 - 2009-03-08 04:31 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 06021120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 06021120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 01469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-06 00:08 - 2006-03-02 13:00 - 01469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcpl.cpl
2014-02-06 00:08 - 2006-03-02 13:00 - 01216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 01216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\urlmon.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstime.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstime.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedkcs32.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\occache.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iepeers.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\url.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtmled.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\licmgr10.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsproxy.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\corpol.dll
2014-02-06 00:08 - 2006-03-02 13:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\corpol.dll
2014-02-05 23:29 - 2006-03-02 13:00 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-02-05 23:29 - 2006-03-02 13:00 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-05 23:29 - 2006-03-02 13:00 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ie4uinit.exe
2014-02-04 22:29 - 2013-05-04 12:08 - 00000000 ____D () C:\Documents and Settings\Krzysiek\Dane aplikacji\25Assist
2014-02-04 22:21 - 2014-02-04 22:21 - 00036352 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Krzysztof_raport paliwowy I.2014.xls
2014-02-04 21:56 - 2014-02-04 21:56 - 00957952 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Loco marmolada 02.2014.xls
2014-02-04 21:46 - 2014-02-04 21:46 - 00286208 _____ () C:\Documents and Settings\Krzysiek\Pulpit\sezam 02-03.2014.xls
2014-02-02 16:14 - 2013-12-28 19:42 - 00000523 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Skrót do szachy2001.exe.lnk
2014-02-01 18:52 - 2014-02-01 18:52 - 00000042 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Nela.txt
2014-02-01 14:07 - 2012-12-25 12:08 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-02-01 06:03 - 2013-12-18 18:26 - 00032768 _____ () C:\Documents and Settings\Krzysiek\Pulpit\Sprzedaż od 2013-12-01 do 2013-12-13.xls
2014-02-01 06:02 - 2014-01-31 20:11 - 00045056 _____ () C:\Documents and Settings\Krzysiek\Pulpit\bn Sprzedaż od 2014-01-17 do 2014-01-31.xls
2014-01-31 19:36 - 2014-01-31 19:36 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\XILS-lab
2014-01-31 19:36 - 2012-12-25 12:58 - 00000000 __RHD () C:\Documents and Settings\All Users\Dane aplikacji
2014-01-31 19:32 - 2014-01-31 19:32 - 00715152 _____ () C:\WINDOWS\unins001.exe
2014-01-31 19:32 - 2014-01-31 19:32 - 00036202 _____ () C:\WINDOWS\unins001.dat
2014-01-29 23:38 - 2014-01-29 23:38 - 00030208 _____ () C:\Documents and Settings\Krzysiek\Pulpit\modBN Sprzedaż od 2014-01-01 do 2014-01-16.xls
2014-01-29 23:37 - 2014-01-20 20:48 - 00030208 _____ () C:\Documents and Settings\Krzysiek\Pulpit\BN Sprzedaż od 2014-01-01 do 2014-01-16.xls
2014-01-29 18:55 - 2012-12-25 12:14 - 00000000 ___RD () C:\Documents and Settings\Krzysiek\Menu Start\Programy
2014-01-29 16:52 - 2014-01-29 16:52 - 00000133 _____ () C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
2014-01-29 14:45 - 2012-12-25 12:07 - 00000000 ____D () C:\WINDOWS\Registration
2014-01-28 20:53 - 2014-01-28 20:53 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Waves
2014-01-24 08:32 - 2014-01-24 08:32 - 00000000 ____D () C:\Program Files\WIBU-SYSTEMS

Some content of TEMP:
====================
C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Temp\Checkupdate.exe
C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Temp\Foxit Reader Updater.exe
C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Temp\Foxit Updater.exe
C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Temp\gcapi_dll.dll
C:\Documents and Settings\Krzysiek\Ustawienia lokalne\Temp\gtapi_signed.dll


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2006-03-02 13:00] - [2008-04-14 22:51] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\WINDOWS\system32\winlogon.exe
[2006-03-02 13:00] - [2008-04-14 22:51] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\WINDOWS\system32\svchost.exe
[2006-03-02 13:00] - [2008-04-14 22:51] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\WINDOWS\system32\services.exe
[2006-03-02 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\WINDOWS\system32\User32.dll
[2006-03-02 13:00] - [2008-04-14 22:50] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\WINDOWS\system32\userinit.exe
[2006-03-02 13:00] - [2008-04-14 22:51] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\WINDOWS\system32\rpcss.dll
[2006-03-02 13:00] - [2009-02-09 11:53] - 0401408 ____A (Microsoft Corporation) a37311d9d628c1042a2836731787f0f3 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2006-03-02 13:00] - [2008-04-14 21:31] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================